[Mailman-Users] mailman questions

Brad Knowles brad.knowles at skynet.be
Thu Aug 28 00:19:49 CEST 2003

At 2:21 PM -0700 2003/08/27, Aviram Carmi wrote:

>  works with mailscanner to filter out spam/viruses to/from the list

	This should be external to the mailing list.  The mailing list 
should probably have features to allow it to take advantage of any 
external virus/spam tagging and filtering that you can perform, but 
the bulk of the work should actually be done in the MTA, or in 
conjunction with the MTA -- before the message gets to the mailing 
list software itself.

>  be secure so that the list cannot be hijacked by spammers

	"Secure" is a relative term.  If you run a closed list and do not 
allow postings from non-subscribers, then spammers will either have 
to subscribe to the list before they can spam, or they will have to 
forge the address of a subscriber.

	Problem is, "viraspam" tools like SoBig.F will generate spam 
using the mailbox of an infected person as a guide, and they may be 
able to forge mail from another member (perhaps with an infected 
attachment) and get it posted to the list.

	Just how secure does the list have to be?

	As far as everything else is concerned, it seems to me that 
mailman can do all this, and I believe it's a pretty good tool for 
doing so.

Brad Knowles, <brad.knowles at skynet.be>

"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety."
     -Benjamin Franklin, Historical Review of Pennsylvania.

GCS/IT d+(-) s:+(++)>: a C++(+++)$ UMBSHI++++$ P+>++ L+ !E-(---) W+++(--) N+
!w--- O- M++ V PS++(+++) PE- Y+(++) PGP>+++ t+(+++) 5++(+++) X++(+++) R+(+++)
tv+(+++) b+(++++) DI+(++++) D+(++) G+(++++) e++>++++ h--- r---(+++)* z(+++)

More information about the Mailman-Users mailing list